Back to Home

Security Notice

How to responsibly report security vulnerabilities in CodeVerse Hub projects.

Last updated February 2026

If you've found a vulnerability in any CodeVerse Hub project, we would like to know so we can fix it before it is exploited.

Reporting a Vulnerability

Please do NOT open a public GitHub issue for security vulnerabilities.

Send details to thecodeversedev@gmail.com or DM a server Admin, including:

  • The website, page, or repository where the vulnerability can be observed
  • A brief description of the vulnerability
  • Non-destructive exploitation details (proof of concept)

We aim to acknowledge all reports within 48 hours and will work with you to understand and resolve the issue promptly.

Scope

The following are NOT in scope:

  • Volumetric vulnerabilities (e.g. DDoS)
  • Reports indicating missing security headers without a proof of concept
  • Social engineering attacks

Response

We will do our best to reply as fast as possible. Responsible disclosure is appreciated — we ask that you give us reasonable time to patch vulnerabilities before making them public.

Thank you for helping keep CodeVerse Hub safe for everyone.